author | Rich Burridge <rich.burridge@oracle.com> |
Wed, 14 Jan 2015 07:56:59 -0800 | |
changeset 3636 | ca7fe1fad4ea |
parent 3591 | 76362dc58c44 |
child 5559 | a6efae0791c0 |
permissions | -rw-r--r-- |
Disable SSLv2 and SSLv3 in links to "mitigate POODLE vulnerability". This change will be passed upstream. --- https.c.orig 2015-01-13 06:51:50.062449801 -0800 +++ https.c 2015-01-13 06:52:03.963799972 -0800 @@ -63,6 +63,7 @@ context = SSL_CTX_new((void *)m); if (!context) return NULL; SSL_CTX_set_options(context, SSL_OP_ALL); + SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3); SSL_CTX_set_default_verify_paths(context); }